Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/74/319c7b-28c6-49a3-ac1b-fae0e5d2eebf/1/NaQ6gJ7PBXiRQk3JEDqKcnJgUkw.roa
File: NaQ6gJ7PBXiRQk3JEDqKcnJgUkw.roa (raw, json)
Hash identifier: ylcb65YgekMAhDN1pEyzjAwNPX9fqyXCn82nyfKm3LY=
Subject key identifier: 35:A4:3A:80:9E:CF:05:78:91:42:4D:C9:10:3A:8A:72:72:60:52:4C
Certificate issuer: /CN=e777bc8e3ec250ce85fb90913c2c49051043ebc5
Certificate serial: 011E2D
Authority key identifier: E7:77:BC:8E:3E:C2:50:CE:85:FB:90:91:3C:2C:49:05:10:43:EB:C5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/53e8jj7CUM6F-5CRPCxJBRBD68U.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/74/319c7b-28c6-49a3-ac1b-fae0e5d2eebf/1/NaQ6gJ7PBXiRQk3JEDqKcnJgUkw.roa
Signing time: Sat 30 Apr 2022 12:48:27 +0000
ROA not before: Sat 30 Apr 2022 12:48:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 43576
IP address blocks: 185.239.184.0/24 maxlen: 24
2a0c:6580::/48 maxlen: 48
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 73261 (0x11e2d)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e777bc8e3ec250ce85fb90913c2c49051043ebc5
Validity
Not Before: Apr 30 12:48:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=35a43a809ecf057891424dc9103a8a727260524c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:f5:1f:20:48:ed:8c:7b:16:3d:2e:5c:bd:9b:db:
b8:45:71:2d:d4:0f:35:c1:12:4e:d8:7c:82:bc:a9:
71:50:77:5c:7d:1f:94:4a:ba:b2:71:fd:70:da:e2:
bd:19:0b:19:a7:c5:af:a5:ac:1c:25:2b:f8:c5:f5:
d5:05:80:9e:6c:20:c5:74:43:82:34:48:3d:69:fc:
09:ff:8b:41:45:9d:bc:ac:54:81:ff:77:7c:77:3e:
21:44:fe:b5:84:73:8c:6b:e8:f6:ed:3d:9a:04:cc:
37:a6:40:59:2d:4f:73:7c:02:63:5a:31:db:6c:24:
ec:87:0e:1f:5b:b4:99:16:88:c9:bd:1b:b4:6b:1c:
69:71:0f:57:a5:ff:1c:ef:96:12:cc:2a:85:46:16:
dd:7e:46:10:58:2b:a7:a9:68:43:74:81:32:c7:7a:
14:14:e6:47:16:0d:a2:75:36:81:ad:e5:ec:a2:53:
79:68:34:f8:e3:f8:a7:45:ab:76:b6:6d:dc:2f:ed:
25:b5:ab:bf:dc:3a:6f:7c:fd:ad:ad:e7:5c:d6:c3:
81:e4:1e:76:b2:ca:7d:51:46:f0:b4:35:a2:ce:4e:
c1:80:17:9e:a2:53:d5:4e:81:1a:0b:4d:e2:d1:b8:
78:0f:0d:cf:22:f4:24:90:55:49:d3:5c:b5:95:1b:
19:69
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
35:A4:3A:80:9E:CF:05:78:91:42:4D:C9:10:3A:8A:72:72:60:52:4C
X509v3 Authority Key Identifier:
keyid:E7:77:BC:8E:3E:C2:50:CE:85:FB:90:91:3C:2C:49:05:10:43:EB:C5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/53e8jj7CUM6F-5CRPCxJBRBD68U.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/74/319c7b-28c6-49a3-ac1b-fae0e5d2eebf/1/NaQ6gJ7PBXiRQk3JEDqKcnJgUkw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/74/319c7b-28c6-49a3-ac1b-fae0e5d2eebf/1/53e8jj7CUM6F-5CRPCxJBRBD68U.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.239.184.0/24
IPv6:
2a0c:6580::/48
Signature Algorithm: sha256WithRSAEncryption
22:d1:3c:18:2f:ce:97:a3:84:5a:5c:f5:c0:71:11:69:8d:cc:
87:c1:fb:bb:72:65:82:b7:17:00:37:6f:dc:7e:b7:5b:53:68:
f6:5c:38:48:4d:f4:02:be:51:d7:b1:28:29:10:a4:5b:1b:5d:
20:da:02:59:e4:6f:33:92:21:02:4b:1b:1a:6c:57:02:e2:62:
d3:51:04:25:2e:d5:f7:3a:d2:de:da:64:76:91:58:27:24:15:
c7:84:98:39:45:89:31:a0:1b:2e:cc:97:9b:26:4e:e2:61:36:
2a:43:70:8c:2f:c1:0d:70:ea:2a:37:5f:04:be:6a:ed:44:97:
92:28:ca:18:f3:11:6c:b3:c7:50:0f:5e:91:3d:f5:59:94:4f:
a0:89:4e:8e:18:26:18:67:22:65:e3:96:f6:30:24:81:81:8a:
7d:13:c1:45:f1:e1:89:1b:70:d0:06:9f:2d:61:88:8a:d3:d1:
3f:25:34:a2:08:10:e9:98:ba:83:9b:e5:5c:c3:2c:10:01:e1:
23:55:e7:0d:7f:f6:f7:4c:0b:f5:f6:6b:68:4c:e2:49:58:33:
2d:bd:b6:47:da:03:b0:06:c5:a2:51:62:b8:ae:69:c6:a3:9b:
d6:a5:65:56:bb:9c:c8:d0:74:ed:ba:67:4e:3f:56:fa:71:86:
c6:b3:01:bb
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:57:58 2023 by rpki-client on console-fra.rpki-client.org